Well, yeah. They would. There's not much you can do as a company with those passwords without potentially having a huge scandal on your hands, and keeping them would only invite hackers who would also potentially cause a huge scandal.

Not the first time it's happened. Lenovo, dell, and HP have all been caught with their dicks in their hands regarding this. At some point or other they've all had full keyloggers and SSL circumvention via bloatware.